Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/MsXvpQzNyJWf77S3doy4ufu8tAM.roa
File: MsXvpQzNyJWf77S3doy4ufu8tAM.roa (raw, json)
Hash identifier: 6uL1ZlEA2CFW8VWE6m3TVpORFQ6KMbEgOvCoSedbo7U=
Subject key identifier: 32:C5:EF:A5:0C:CD:C8:95:9F:EF:B4:B7:76:8C:B8:B9:FB:BC:B4:03
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1279
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/MsXvpQzNyJWf77S3doy4ufu8tAM.roa
Signing time: Fri 01 Sep 2023 08:04:31 +0000
ROA not before: Fri 01 Sep 2023 08:04:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 60.244.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4729 (0x1279)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=32C5EFA50CCDC8959FEFB4B7768CB8B9FBBCB403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3b:19:fa:be:80:81:f5:3b:97:d8:34:81:31:
2f:bd:09:cd:c2:32:37:1e:df:ed:66:d0:ca:60:8c:
1c:9e:4c:b0:c8:e6:bc:b2:dd:b1:a4:80:e7:ed:31:
e0:16:2a:7f:62:66:db:17:d4:60:70:2d:67:79:35:
21:08:0c:bc:a1:cd:85:b8:53:f6:f7:75:7f:b2:72:
29:eb:30:62:cf:2c:8d:bd:ab:df:e5:1a:1e:f4:e1:
c8:fc:21:70:42:0f:75:7d:a3:1d:2c:40:70:9f:dd:
23:58:29:17:c8:38:3d:22:91:de:3d:14:92:38:43:
b5:1a:56:45:75:2a:bb:aa:23:2e:77:2a:fc:ff:3c:
11:d0:b2:85:91:c6:47:85:c9:11:80:1c:9e:78:ef:
a3:39:1f:fc:54:08:79:de:e6:26:77:3f:ac:46:4c:
0c:cc:87:49:f6:e4:ee:55:dd:68:7e:a6:80:c7:a6:
65:65:30:84:32:6e:40:74:55:fa:ec:6c:9a:c5:ef:
35:8c:5e:50:62:90:38:87:ee:71:d3:0f:3e:1a:40:
63:ff:63:b8:be:82:81:60:b4:bb:d2:93:69:ec:53:
6e:cc:37:00:00:88:0b:3d:14:2b:2a:df:de:6a:d5:
a6:e2:06:68:0d:af:8b:0a:ad:40:22:92:17:3b:3d:
3e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C5:EF:A5:0C:CD:C8:95:9F:EF:B4:B7:76:8C:B8:B9:FB:BC:B4:03
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/MsXvpQzNyJWf77S3doy4ufu8tAM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
92:3f:d4:00:ed:87:34:b5:05:d8:7e:6e:93:1f:14:3c:4c:aa:
03:b8:0d:b5:91:a1:e4:7f:6b:4b:b3:5d:54:c2:ac:45:41:80:
d7:aa:8e:a4:7d:eb:c4:ee:2c:ba:eb:49:25:fc:c3:6f:70:ed:
9f:68:f6:f9:f8:9a:06:18:92:17:2d:14:95:c3:97:d5:fd:75:
73:60:4e:26:8a:f1:91:55:98:16:82:bf:e8:1f:d2:a4:7a:fa:
29:8e:5e:a9:25:23:a3:3e:08:6f:b7:01:cb:88:bb:ea:6c:95:
7a:09:ed:2b:82:0d:b3:8f:14:4e:11:19:09:01:7c:61:0e:e7:
b8:c6:9b:ad:62:c6:ff:e6:25:c2:28:a0:63:93:81:7e:8a:88:
96:05:4b:1b:7a:5e:5d:cc:c4:90:75:40:7f:41:53:a3:6d:55:
88:66:cc:db:ed:ba:64:b3:81:22:e9:a0:d6:54:d3:f4:20:0e:
37:53:b7:43:e0:84:49:41:d1:a0:9b:51:50:9c:a1:24:72:4a:
82:ce:d3:c2:f6:8a:82:0f:f3:73:17:00:f5:c5:61:e6:b2:b8:
45:2f:fa:e5:8d:51:7d:8b:2b:7b:0c:84:a6:9e:ac:1b:4e:68:
26:74:d8:2e:30:e8:ff:24:5f:03:7b:5a:eb:c6:7c:76:e4:55:
7d:00:35:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org